Default Vlan

Unanswered Question
Mar 1st, 2008

Hi All,

why are we disabling Default VLAN? What is the Advandage and Disadvandge behind that?

Thank you

Vijay K

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4.5 (2 ratings)
aijaz802 Sat, 03/01/2008 - 21:56

Hi Vijay,

VLAN1 carries certain traffic (CDP, PAgP, DTP, VTP, etc) used by the switches. It's also the default VLAN for all the switch ports. So the idea is not use it for anything else. No compelling reason other than lets keep traffic that has to traverse

vlan 1 from mixing with user traffic and also improves security to a certain extent.

Pls. go thru this link for detailed info..

Pls. rate if it helps..



robert.horrigan Sat, 03/01/2008 - 22:52

Years ago before there was any great switch hardening (stp, trunking) we liked to change the default management and user vlans to another number for for security reasons. Now it's not such a huge deal as there are other mechanisms to prevent other devices from impacting the network, however, this practice is still carried today....just because we like to change the defaults i guess.


This Discussion